The push for GDPR compliance has generated a lot of good questions. Is there a certification that organization’s can get to demonstrate their compliance with GDPR? If not, how is my business supposed to show that we are compliant when people ask us? The bottom line is that there is no GDPR certification. At least […]
The General Data Protection Regulation (GDPR) deadline on May 25, 2018 has come and passed. There is still a lot of mystery surrounding international enforcement of these updated data privacy laws, but the consequences of non-compliance are manifesting themselves as a number of high profile cases continue to shake out. So what is GDPR, where […]
As a small business ourselves, this is a question we can really relate to. Do you really need all this penetration testing? And even if I recognize it is important, can I even afford it? The fact is, as a small business, and especially as a startup, every single dollar is accounted for. Every dollar that is […]
Crazy variations in pricing between companies is one of the most common complaints we hear from clients comparing penetration testing quotes. This isn’t a new problem for the services industry as a whole, but it can be frustrating. Especially when you’re trying to compare services that are more technical in nature. Information security consulting engagements […]
Let’s remove some of the mystery behind how web application penetration tests are priced. One of our core tenets is honesty and transparency, so if we can clarify the process of scoping out a penetration test and help you understand how much a web application penetration is going to cost, it may make you more […]
One of the primary questions we get when it comes to web application penetration testing (including mobile applications and APIs) is about what methodology we use. Of course it’s natural for people to wonder how we’re going to go about testing their assets, and somewhat surprisingly, it can be hard to get this kind of […]
About 95% of the time, penetration tests are completed without any issues occurring. An experienced penetration tester will have conducted hundreds of assessments on a myriad of networks, and will know the common pitfalls to avoid. A skilled tester will work diligently to evaluate the risk to your network, while protecting your systems and keeping […]
Knowing the difference between a penetration test and vulnerability scan is critical to optimizing your resources and making sure you are taking the necessary steps to reach compliance, secure your network, and determine your level of risk. Penetration tests are far more expensive and may be more than you need, while vulnerability scans, while cheap, […]
While everyone hopes that when they have a third party come in to conduct an external penetration test everything goes according to plan, the honest truth is that sometimes, that’s just not the case. There are a litany of issues that can pop up during penetration testing in general. While 95% of the time things […]
DFARS compliance can be an intimidating goal for an organization. Figuring out where to start, what is required, and how much it’s going to cost to assess DFARS compliance are just a few of the things that companies are trying to understand. We’ve explored the Defense Federal Acquisition Regulation Supplement (DFARS) in another post already, […]
